equity-research-orchestrator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (references/data-queries.md and references/methodology.md) instructs running shared scripts and tool views (e.g., stock_individual_info_em, stock_zh_a_hist) that fetch data from public third‑party sources such as 东方财富/AKShare/Wind and company announcements, and the agent is expected to ingest and act on that data as part of its analysis, which could allow untrusted third‑party content to influence decisions.